FEDORA-2018-79f7540a1e

security update in Fedora 29 for gnutls

Status: stable 4 months ago
  • Update to upstream 3.6.5 release
  • Security fix for CVE-2018-16868

How to install

sudo dnf upgrade --advisory=FEDORA-2018-79f7540a1e

Comments 17

This update has been submitted for testing by ansasaki. This critical path update has not yet been approved for pushing to the stable repository. It must first reach a karma of 2, consisting of 0 positive karma from proventesters, along with 2 additional karma from the community. Or, it must spend 14 days in testing without any negative feedback Additionally, it must pass automated tests..

ansasaki edited this update.

This update has been submitted for testing by ansasaki.

Before this update, F29 vncviewer would fail with "TLS Handshake failed: An illegal TLS extension was received." when connecting to a VNC server using a gnutls with record_size_limit extension.

This gnutls update fixes F29 vncviewer.

karma: +1 critpath: +1 #1657289: +1
karma: +1 critpath: +1

This update has been pushed to testing.

Works great! LGTM! =)

karma: +1

No regressions noted

karma: +1

No regressions found

karma: +1

no regressions noted

karma: +1

no issues

karma: +1

This update has been submitted for batched by ansasaki.

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Note this update seems to require the newer nettle from this other update, but this dependency is not specified by the package. This update is marked as a security update but that one is not; so if you have a system which automatically installs only security updates, it will actually break when it installs this update, because it will not install the newer nettle.

@kevin @puiterwijk you may see this on infra systems.


Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown. Comments are governed under this privacy policy.

-1 0 +1 Feedback Guidelines

Is the update generally functional? (karma)

You need to be logged in to add karma!

Does the system's basic functionality continue to work after this update?
#1654929 CVE-2018-16868 gnutls: Bleichenbacher-like side channel leakage in PKCS#1 v1.5 verification and padding oracle verification
#1655389 CVE-2018-16868 gnutls: Bleichenbacher-like side channel leakage in PKCS#1 v1.5 verification and padding oracle verification [fedora-all]
#1657289 update to gnutls-3.6.5
Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
medium
Karma
+8
stable threshold: 3
unstable threshold: -3
Autopush
Disabled
Dates
submitted 4 months ago
in testing 4 months ago
in stable 4 months ago
modified 4 months ago

Related Bugs 3

00 #1654929 CVE-2018-16868 gnutls: Bleichenbacher-like side channel leakage in PKCS#1 v1.5 verification and padding oracle verification
00 #1655389 CVE-2018-16868 gnutls: Bleichenbacher-like side channel leakage in PKCS#1 v1.5 verification and padding oracle verification [fedora-all]
0+1 #1657289 update to gnutls-3.6.5

Automated Test Results